yolo
Warn
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The skill is designed to execute a sequence of shell commands (
git add -A,git commit,git push, andbun run deploy) automatically. It explicitly instructs the agent to bypass all user confirmations and pauses, which removes the opportunity for human oversight before changes are pushed to a remote repository or deployed to production environments. - [DATA_EXFILTRATION]: By using the
git add -Acommand, the skill stages every change in the repository. If sensitive files such as local configuration, environment variables (.env), or private keys are present and not correctly ignored by.gitignore, they will be automatically committed and pushed to the remote server, leading to unintended data exposure.
Audit Metadata